Prime Service Catalog@11.0 base Security Vulnerabilities and Issues — Prime Service Catalog@11.0 base CVE List

Lucene search

CiscoPrime Service Catalog11.0 base

3 matches found

CVE•added 2015/12/12 11:59 a.m.•38 views

CVE-2015-6395

Cisco Prime Service Catalog 10.0, 10.0(R2), 10.1, and 11.0 does not properly restrict access to web pages, which allows remote attackers to modify the configuration via a direct request, aka Bug ID CSCuw48188.

6.5CVSS6.8AI score0.0036EPSS

CVE•added 2015/10/30 10:59 a.m.•34 views

CVE-2015-6350

SQL injection vulnerability in the web framework in Cisco Prime Service Catalog 11.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCuw50843.

6.5CVSS8.2AI score0.00287EPSS

CVE•added 2016/07/28 1:59 a.m.•29 views

CVE-2016-1462

Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Prime Service Catalog (PSC) 11.0 allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCuz63795.

6.1CVSS5.9AI score0.00453EPSS